[Secure-testing-commits] r19592 - data/CVE

Luk Claes luk at alioth.debian.org
Mon Jun 25 17:53:38 UTC 2012 

Author: luk
Date: 2012-06-25 17:53:37 +0000 (Mon, 25 Jun 2012)
New Revision: 19592

Modified:
   data/CVE/list
Log:
mark libvorbisidec issues as fixed

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-06-25 17:47:52 UTC (rev 19591)
+++ data/CVE/list	2012-06-25 17:53:37 UTC (rev 19592)
@@ -8019,7 +8019,7 @@
 	- iceape <not-affected> (Only affects Firefox >= 4)
 CVE-2012-0444 (Mozilla Firefox before 3.6.26 and 4.x through 9.0, Thunderbird before ...)
 	{DSA-2412-1 DSA-2406-1 DSA-2402-1 DSA-2400-1}
-	- libvorbisidec <unfixed> (bug #669196)
+	- libvorbisidec 1.0.2+svn18153-0.1 (bug #669196)
 	[squeeze] - libvorbisidec <no-dsa> (Minor issue, no dev-deps)
 	- libvorbis 1.3.2-1.2 (bug #664197)
 	- icedove <unfixed>
@@ -41142,7 +41142,7 @@
 	[etch] - xulrunner <end-of-life> (Mozilla packages from oldstable no longer covered by security support)
 CVE-2009-3379 (Multiple unspecified vulnerabilities in libvorbis, as used in Mozilla ...)
 	{DSA-1939-1}
-	- libvorbisidec <unfixed> (bug #669196)
+	- libvorbisidec 1.0.2+svn18153-0.1 (bug #669196)
 	- libvorbis 1.2.3-1 (medium)
 	- xulrunner 1.9.1.4-1
 	[lenny] - xulrunner <not-affected> (Only affects Firefox 3.5)
@@ -62533,7 +62533,7 @@
 CVE-2008-2010 (Unspecified vulnerability in Apple QuickTime Player on Windows XP SP2 ...)
 	NOT-FOR-US: Windows
 CVE-2008-2009 (Xiph.org libvorbis before 1.0 does not properly check for ...)
-	- libvorbisidec <unfixed> (bug #669196)
+	- libvorbisidec 1.0.2+svn18153-0.1 (bug #669196)
 	- libvorbis 1.2.0.dfsg-4 (bug #482039)
 	[etch] - libvorbis <not-affected> (actual vulnerability fixed pre-1.0)
 	[lenny] - libvorbis <not-affected> (actual vulnerability fixed pre-1.0)
@@ -63938,7 +63938,7 @@
 	RESERVED
 CVE-2008-1423 (Integer overflow in a certain quantvals and quantlist calculation in ...)
 	{DSA-1591-1}
-	- libvorbisidec <unfixed> (bug #669196)
+	- libvorbisidec 1.0.2+svn18153-0.1 (bug #669196)
 	- libvorbis 1.2.0.dfsg-3.1 (bug #482518)
 CVE-2008-1422
 	RESERVED
@@ -63950,7 +63950,7 @@
 	- libvorbis 1.2.0.dfsg-3.1 (bug #482518)
 CVE-2008-1419 (Xiph.org libvorbis 1.2.0 and earlier does not properly handle a zero ...)
 	{DSA-1591-1}
-	- libvorbisidec <unfixed> (bug #669196)
+	- libvorbisidec 1.0.2+svn18153-0.1 (bug #669196)
 	- libvorbis 1.2.0.dfsg-3.1 (bug #482518)
 CVE-2008-1418
 	RESERVED

More information about the Secure-testing-commits mailing list